tequilaOS/platform_system_sepolicy
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Allow microdroid_payload to read /dev/console am: bd1be6c554 am: 1400794824 am: f39e78de99

Browse source 
Original change: https://android-review.googlesource.com/c/platform/system/sepolicy/+/2640390

Change-Id: Ie5bb0e5fcd248c4a7c85bd8984c226a54d67f888
Signed-off-by: Automerger Merge Worker <android-build-automerger-merge-worker@system.gserviceaccount.com>
This commit is contained in:
Jiyong Park 2023-07-01 01:59:14 +00:00 committed by Automerger Merge Worker
commit a58a3f535c
1 changed files with 4 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
microdroid/system/private/microdroid_payload.te
View file

@ -27,6 +27,10 @@ allow microdroid_payload microdroid_manager:vsock_socket { read write };
# Write to /dev/kmsg.
allow microdroid_payload kmsg_device:chr_file rw_file_perms;
# Read from console. Note that both /dev/kmsg and /dev/console are backed
# by the same file in the host.
allow microdroid_payload console_device:chr_file r_file_perms;
# Allow microdroid_payload to host binder servers via vsock. Listening
# for connections from the host is permitted, but connecting out to
# the host is not. Inbound connections are mediated by